Thousands of Customers’ Credit Card Data Stolen
The Green Bay Packers organization has disclosed a data breach affecting thousands of customers who made purchases on their official online store, packersproshop. The incident,…
Category: CyberSecurityNews
Hackers Targeting Users Complained On Government Portal To Steal Credit Card Data
Attackers have evolved a sophisticated social engineering scheme to target Middle Eastern banking consumers by posing as government officials and utilizing remote access software to…
Kerio Control Firewall Vulnerability Allows 1-Click Remote Code Execution
A critical vulnerability in Kerio Control, a popular firewall and Unified Threat Management (UTM) product, has been discovered that could allow attackers to execute remote…
PoC Exploit Released For Apache Struts Remote Code Execution Vulnerability
A proof-of-concept (PoC) exploit for the critical Apache Struts vulnerability, CVE-2024-53677, has been publicly released, raising alarm across the cybersecurity community. This vulnerability, which scores…
PoC Exploit Code Released For macOS TCC Bypass Vulnerability
A proof-of-concept (PoC) exploit code for a critical vulnerability in macOS, identified as CVE-2024-54527 has been disclosed. This vulnerability allows attackers to bypass the Transparency,…
Palo Alto Networks Expedition Tool Vulnerability Exposes Firewall Credentials
Multiple vulnerabilities in Palo Alto Networks’ Expedition migration tool have been discovered, potentially exposing sensitive firewall credentials, including usernames, cleartext passwords, device configurations, and API…
Wireshark 4.4.3 Released – What’s New!
The Wireshark Foundation has announced the release of Wireshark 4.4.3, the latest version of the world’s most popular network protocol analyzer. This update brings a…
Ivanti VPN Zero-Day Vulnerability Actively Exploited in the Wild
Ivanti has disclosed actively exploiting a critical zero-day vulnerability, CVE-2025-0282, in its Connect Secure VPN appliances. This vulnerability allows unauthenticated remote code execution and has…
Dell Update Package Framework Vulnerability Let Attackers Escalate Privileges
A critical security vulnerability has been identified in Dell’s Update Package (DUP) Framework, potentially exposing systems to privilege escalation and denial-of-service attacks. The vulnerability tracked…
CISA Warns of Three Vulnerabilities Actively Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding three critical vulnerabilities that are currently being exploited in the wild. These…
CVE Partnership with Thales as a Designated Root for Vulnerability Management
The CVE® Program has announced a significant expansion of its collaboration with Thales Group to strengthen the management and assignment of CVE Identifiers (CVE IDs)…
Microsoft Pushes Identity Management Feature For Azure Via Entra
Microsoft has announced the Public Preview of Managed Identities as Federated Identity Credentials (FICs) for Microsoft Entra. The innovation aims to enhance security and simplify…